You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/sentinel/sentinel-security-copilot.md
+11-13Lines changed: 11 additions & 13 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -72,26 +72,24 @@ Increase your prompt accuracy when you have access to multiple Microsoft Sentine
72
72
73
73
### Sample prompts
74
74
75
-
For guidance on writing effective prompts, see [Prompting in Microsoft Copilot for Security](/security-copilot/prompting-security-copilot). Here are some examples:
75
+
Consider the **Microsoft Sentinel incident investigation** promptbook as a starting point for creating effective prompts. This promptbook delivers a report about a specific incident, along with related alerts, reputation scores, users, and devices.
76
76
77
-
- The second part of this prompt nudges Copilot to provide human readable information instead of responding with object IDs.
77
+
For more information, see [Using promptbooks](/copilot/security/using-promptbooks).
78
78
79
-
`*Show me Sentinel incidents that were closed as a false positive. Supply the Incident number, Incident Title, and the time they were created.*`
79
+
For general guidance on writing effective prompts, see [Prompting in Microsoft Copilot for Security](/security-copilot/prompting-security-copilot). Here are some examples that incorporate that guidance:
80
80
81
-
- Copilot knows who you are.
81
+
The second part of this prompt nudges Copilot to provide human readable information instead of responding with object IDs.<br>
82
+
`Show me Sentinel incidents that were closed as a false positive. Supply the Incident number, Incident Title, and the time they were created.`
82
83
83
-
`*What Sentinel incidents created in the last 24 hours are assigned to me? List them with highest priority incidents at the top.*`
84
+
Copilot knows who you are.<br>
85
+
`What Sentinel incidents created in the last 24 hours are assigned to me? List them with highest priority incidents at the top.`
84
86
85
-
- When you narrow a prompt response down to a single incident, Copilot knows the context.
87
+
When you narrow a prompt response down to a single incident, Copilot knows the context.<br>
88
+
`Tell me about the entities associated with that incident.`
86
89
87
-
`*Tell me about the entities associated with that incident.*`
88
-
89
-
- A useful way to summarize the prompts and responses so far.
90
-
91
-
`*Write an executive report summarizing this investigation. It should be suited for a nontechnical audience.*`
90
+
A useful way to summarize the prompts and responses so far.<br>
91
+
`Write an executive report summarizing this investigation. It should be suited for a nontechnical audience.`
92
92
93
93
For more information on sample prompts, see [Rod Trent's Copilot for Security GitHub](https://github.com/rod-trent/Copilot-for-Security/blob/main/Prompts/Plugins/Sentinel.md).
0 commit comments